h  ...  ..  .  .  ,  The  security  sector  is  plagued  with  bad  guys, 

bad  buys,  weak  budgets  and  weak  workers.  What’s  a  manager  to  do? 
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News  Analysis 

Solid-state  storage  is 
promising,  IT  execs 
say.  Too  bad  its  cost 
is  stilt  prohibitive  for 
many  of  them,  page  12 

Excel  may  turn  out  to 
be  Microsoft’s  ace  in 
the  hole  on  business 
intelligence,  page  te 

the  grill: ‘Privacy  is 
dead.  Get  over  it,’ says 
private  eye  Steven 
Rambam.  page  ts 


Opinion 

Microsoft  a  player 
in  high-performance 


J.  Vaughan-Nichote 
doesn’t  buy  it.  paoe  22 


Careers 


Control  freaks  can 


actually  make  good 
bosses -if  they’re 
self-aware,  page  47 
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You  can’t  manage 
creativity,  but  you 
can  manage  for  it 
Harvard's  Mukti  Khaire 
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Usenet:  Not  Dead  Yet 

Major  ISPs  are  cutting  off  access  to  Usenet  communities. 

But  that  doesn't  necessarily  mean  we’re  witnessing  the  final 
years  of  one  of  the  oldest  online  communication  systems. 

/i|  /  Microsoft:  Bad  Things 
Happen  to  Firms  That 
Use  Unlicensed  Windows 


Researcher  Finds  Evidence  of 
Massive  Site  Compromise 

The  person  who  discovered  the  problem  is  working  with  la 

enforcement  agencies  and  orga- 

nizations  such  as  the  CERT 

Coordination  Center  to  tell  /jf 

site  operators  in  Fortune  If  .  A 

500  firms  and  else-  f  tO.uilOluii)) 

where  that  they  need  \  KCHOOIOIO  ; 


Blog  Spotlight 


Steven  J.  Vaughan-Nichols:  Microsoft's 
actions  have  made  it  clear  Vista  is  on  its 
way  to  the  Microsoft  junkyard,  next  to  simi 
lar  failures  such  as  Windows  ME  and  Microsoft  Bob. 

Google  Chrome  =  Dead,  /^\ 
Google  Search  =  Hot  im  I) 

John  Brandon:  Google's  browser  has  now 

that  has  faded  faster  than  John  Brandon's  summer  tan. 

Backing  the  Claim 

^That  Voting  Systems 
Are  Inherently  Insecure 

Sharon  Machlis:  It’s  not  a  matter  of  tin-foil 
Hk  hats,  partisan  politics,  evil  intent  or  inepti¬ 

tude.  It's  basic  computer  system  design:  Lack  of  a  paper  tri 
makes  any  voting  system  unsafe. 

Stop  Ignoring  Your 
\  v-  H  Phone’s  Inner  Map 

Mike  Elgan:  You  paid  extra  for  the 
h  '  \\  .1  OPS  feature  in  your  cell  phone,  so  why 


inen  worxers 
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Meltdown 
Worry  List  j 

Some  questions  -  and  | 
answers -about  your  job  . 
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Fish  is  charged  with  remotely  installing  new 
software  for  a  stock  brokerage  house.  But  come 
Monday  morning,  one  trader  can't  find  the  program's 
shortcut  icon  where  it's  supposed  to  be. 
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One  global  insurance  program 
for  your  expanding  business. 

Even  for  places  you've  never  been. 

Zurich  HelpPoint  is  here  when  you  need  more  than  just  insurance.  So  we  offer  the 
Zurich  Multinational  Insurance  Proposition  (MIP)*.  It  helps  you  keep  global  insurance 
programs  compliant  when  you  expand  your  business  to  a  new  market  and  expose 
yourself  to  new  risks.  The  strength  of  Zurich  MIP  lies  in  a  transparent  and  thorough 
set  of  solutions  for  writing  and  maintaining  global  insurance  programs  in  over  170 
countries.  Our  game-changing  solution  can  help  you  sleep  better  at  night,  no  matter 
the  time  zone.  For  more  details  about  Zurich  HelpPoint,  visit  www.zurich.com 

Here  to  help  your  world.  Because  change  happenz 
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I  EDITOR’S  NOTE 


Don  Tennant 

Hush/enessofJoy 


THE  COLUMN  I  wrote  last  week,  titled  “Asperger’s 
Oxymoron,”  offended  some  readers  because  of  my 
contention  that  the  contributions  that  Aspies  can 
make  to  society  are  necessarily  undermined  by  the 
degree  to  which  they  are  withdrawn  from  society.  My  belief 
that  isolation  is  detrimental  to  the  human  spirit  and  to  the 


advancement  of  the  human 
race  isn’t  a  particularly 
popular  notion. 

There  are  many  dimen¬ 
sions  to  isolation.  One  that 
seems  to  be  particularly 
common  among  Aspies  is 
a  detachment  from  social 
norms  that,  rather  than 
manifesting  itself  as  en¬ 
dearing  nonconformity, 
tends  to  be  more  of  an 
oblivious  self-centeredness. 
The  focus  is  inward,  rather 
than  outward.  Take  Rich¬ 
ard  Stallman. 

I  mentioned  last  week 
that  Stallman,  founder  of 
the  Free  Software  Founda¬ 
tion,  had  referred  to  him¬ 
self  in  a  2000  interview  as 
being  “borderline  autistic.” 
While  he  shied  away  from 
that  assessment  in  my  in¬ 
terview  with  him  in  July, 
Stallman  did  acknowl¬ 
edge  that  he  suspected  he 
had  a  “shadow”  form  of 
Asperger’s. 

I  knew  very  little  about 
the  disorder  at  the  time, 
but  it  did  strike  me  that  he 
appeared  to  be  somewhat 
eccentric  and  glaringly 
devoid  of  social  grace.  I 
thought  it  was  cool  that  he 
felt  comfortable  enough 


to  meet  me  in  his  stock¬ 
ing  feet,  so  that  was  fine. 
But  during  the  course  of 
the  interview,  there  was 
an  inescapable  rudeness. 
Just  little  things.  It’s  no 
big  deal,  for  example,  that 
throughout  a  meeting  that 
lasted  nearly  two  hours,  he 
sipped  from  a  large  mug 
but  never  offered  me  so 
much  as  a  drink  of  water. 
It’s  just  that  it  clearly  dem¬ 
onstrates  an  inward  rather 
than  an  outward  focus. 

The  interview,  and  ex¬ 
tensive  subsequent  e-mail 
correspondence  with 
Stallman,  reinforced  a 
conclusion  I’d  drawn  from 
a  2002  biography  I’d  read 
to  prepare  for  our  discus¬ 
sion:  Stallman  is  not  a 
happy  person.  There  was 
a  certain  melancholy  that 
I've  since  observed  in  other 
people  who  identify  them- 


■  In  Aspies,  there’s 
a  detachment  from 
social  norms  that 
is  more  oblivious 
self-centered  ness 
than  endearing 


selves  as  Aspies.  In  fact, 

I’ve  observed  through  my 
untrained  eye  that  Aspies 
can  be  content  in  a  certain 
environment,  but  real  hap¬ 
piness  seems  to  elude  them. 
Is  that  conclusion  off-base? 

For  a  reality  check.  I 
e-mailed  Barbara  Bisson- 
nette,  principal  at  Forward 
Motion  Coaching  in  West 
Boylston,  Mass.  She  pro¬ 
vides  career  counseling  for 
adults  with  Asperger's. 

"I  wouldn't  say  they  are 
inherently  unhappy  people." 
Bissonnette  replied.  “Most 
have  had  lifetimes  of  not  fit¬ 
ting  in,  being  ostracized/ 
marginalized  and  hearing 
about  everything  they  do 
'wrong.' . . .  The  fact  that 
it’s  a  hidden  disability 
compounds  the  problem 
because  people  don’t  realize 
that  some  of  the  unusual 
behaviors  of  an  Aspie  are 
not  intended  to  be  rude.” 

That  the  rudeness  may 
not  be  intentional  doesn't 
make  it  any  less  off-putting. 
I  recently  received  an 
e-mail  from  Roy  Brander 
in  Calgary.  Alberta,  who 
wrote  that  when  he  was 
president  of  the  Calgary 
Unix  Users  Group,  he  in¬ 


vited  Stallman  to  speak. 
Stallman  agreed  and  asked 
y  at  a  member’s  home 
rather  than  at  a  hotel. 

“The  guy  who  hosted 
him  vowed,  'Never 
again,'  ”  Brander  wrote, 
adding  that  it’s  impos¬ 
sible  to  spend  time  with 
Stallman  “and  not  think 
'Asperger’s  syndrome.’  ” 

He  noted  that  while  Stall¬ 
man’s  legendary  inflexibil¬ 
ity  can  be  forgiven  because 
it  “may  have  hard-wired 
neurological  roots,"  his 
intransigence  is  marginal¬ 
izing  him  within  the  free 
software  movement. 

I'm  now  convinced  that 
Stallman  has  far  more  than 
a  “shadow"  form  of  Asperg¬ 
er's.  I’m  also  convinced 
that  his  relentless  free 
software  advocacy  is  driv¬ 
en  by  a  personal  distaste 
for  proprietary  software, 
rather  than  by  any  interest 
in  advancing  the  well-being 
of  others.  Hence  Stallman's 
joyless  demeanor. 

Whether  or  not  the  elu¬ 
siveness  of  joy  among  Asp¬ 
ies  is  inherent,  it  remains 
painfully  apparent.  What 
brings  true  happiness  is 
serving  and  uplifting  other 
people  —  looking  outward 
rather  than  inward.  Aspies 
deserve  that  happiness, 
and  they  should  receive 
whatever  assistance  is 
needed  to  bring  it  about.  ■ 
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We  provide  claims  handling  specialists  for 
those  not-so-special  moments. 

Zunch  HeipPomt  is  here  when  you  need  more  than  just  insurance.  That's  why  the 
moment  you  need  help,  we  engage  a  deeply  experienced  claims  team  with  an 
understanding  of  your  company  and  your  specific  needs.  They  can  quickly  assess 
the  damage  and  start  the  recovery  process  right  away.  We  understand 
that  besides  repamng  physical  damage,  a  quick  response  restores  what  you  need 
]ust  as  much,  your  confidence  For  more  details  about  Zurich  HelpPoint, 
visit  www.zurich.com 

Here  to  help  your  world.  Because  change  happenz 
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■  LETTERS 

Security  Efforts  Need 
Widespread  Support 

I  read  J.F.  Rice's  Sept.  22  Security 
Manager’s  Journal,  “Making  En- 

One  other  point:  If  an  organization 
thinks  of  IT  security  as  a  separate 
layer  on  top  of  an  existing  operation, 
it  isn’t  getting  full  value  from  its 
technology  investment.  IT  is  about 
managing  information.  If  you  aren’t 
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great  empathy.  In  my  experience, 
making  change  internally  is  almost 
impossible  unless  you  can  identify 
SWIFT  —  Specifically  What’s  In 
It  For  Them.  Unless  you  can  find  a 
few  goodies  for  the  other  depart¬ 
ments,  they  may  well  see  war  as  the 
preferred  choice. 

■  Dick  Benton,  principal  consultant, 
GlassHouse  Technologies  Inc., 
Framingham,  Mass., 


J.F.  Rice  is  approaching  the  mattr 
of  security  from  the  wrong  angle 
He  needn’t  seek  allies.  Getting 
people  within  other  IT  groups  to 


Let  Web  2.0  Transform 
Business  Apps 

Computer-world's  Sept  1  Spotlight 
on  business  intelligence  provid¬ 
ed  insight  into  the  potential  of 
Web  2.0  to  revolutionize  usability 
of  business  applications.  Until 
organizations  can  provide  business 
users  with  applications  that  are 


IT  security.  It  is  the  CIO’s  responsi¬ 
bility  to  get  buy-in,  not  the  security 
manager's  to  try  to  build  a  security 
program  using  a  grass-roots  ap¬ 
proach  within  IT.  If  your  organiza- 


should  expect  from  business  ap¬ 
plications  and  from  IT,  but  the  in¬ 
dustry  needs  to  deliver  upon  those 
expectations. 

Web  2.0  technology  can  provide 


in  contrast,  opposing  a  prograi 
that  has  management  endorser 
is  usually  a  ticket  to  a  fast  trip 


Thank  you  for  bringing  attention 
to  this  very  interesting  issue. 

■  Dale  Skeen,  founder  and  CTO, 
Vitria  Technology,  Sunnyvale,  Calif. 
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MONDAY:  ComputerworiiTs  fail  Storage  Networking  WoHd 
conference  opens  in  Dallas.  Gartner’s  Symposium/ITxpo 
2008  also  starts  today,  in  Orlando. 

TUESDAY:  Microsoft  plans  to  issue  11  software  updates 
-  four  rated  critical  -  as  part  of  its  monthly  batch  of  security 
fixes.  Also.  Apple  is  expected  to  announce  new  notebook  PCs. 


thrown  another  lifeline  to 
Windows  XP  users,  extend¬ 
ing  by  six  months  its  cutoff 
date  for  stopping  shipments 
of  the  seven-year-old  oper¬ 
ating  system  to  PC  vendors. 

Hardware  makers  that 
offer  “downgrades"  from 
Windows  Vista  Business  or 
Vista  Ultimate  will  now  be 

More  than  a  third 
of  new  PCs  are  being 
downgraded  to  XP, 
according  to  Devil 
Mountain  Software. 

able  to  get  copies  of  XP  Pro¬ 
fessional  through  the  end 
of  next  July,  Microsoft  said. 
Previously,  it  had  planned  to 
halt  XP  shipments  Jan.  31. 

Microsoft  stopped  retail 
sales  and  regular  licensing 
of  XPon  June  30.  But  it 
maintained  the  downgrade 
option,  which  lets  PC  ven¬ 
dors  install  XP  Professional 
and  give  users  copies  of 
Vista  for  possible  future  use 
XP  may  be  available  long 
past  next  July  if  vendors 
stockpile  it  “Downgrade 
rights  do  not  expire."  a  Mi¬ 
crosoft  spokeswoman  said 
GREGG  KEIZER 


ing  some  cost-cutting 
measures,  including  a 
■  ■  •raumra  reduction  in  temporary 

SAP  Says  Q3  Sales  HK  by 

in  which  employees  who 

Crisis  in  Financial  Markets 

SAP  AG  last  week  SAP,  which  is  scheduled  Inc.  and  Forrester  Research 

warned  that  its  to  report  its  full  results  on  Inc.  both  forecast  recently 

third-quarter  Oct  28,  now  expects  soft-  that  despite  the  meltdown 

financial  results  ware  and  related  services  on  Wall  Street,  IT  spend- 

will  be  below  expectations  revenue  to  total  between  ing  will  continue  to  grow, 

because  of  a  sales  drop-off  €1.97  billion  and  €1.98  bil-  though  at  reduced  rates, 

in  late  September  — a  sur-  lion  (about  $2.7  billion  U.S.).  And  in  a  preliminary 

prise  occurrence  that  the  That  would  be  an  increase  earnings  announcement  of 

software  vendor  blamed  on  of  as  much  as  14%  over  last  its  own,  IBM  didn’t  show 
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of  246H-18  ;  ot  some  wet  according  to  a 
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dent  informs-  !  Qranfoy(RHoea). 
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Solid  State  Not  Yet 

tased  storage  -  at  a  premium  price. 

and  needed  data  is  on  faster 
drives,”  Handy  said.  A  com¬ 
pany  could  replace  those 
hard  drives  with  a  single 

On  Sofid  Ground 

provide  a  strong  return  on 
investment,  he  said. 

Handy  noted  that  some  IT 
departments  “short-stroke” 

But  some  companies  could  find  a 
strong  ROI  despite  the  high  price  tag, 
analysts  say.  By  Todd  R.  Weiss 

only  on  the  outer  edges  of 
large-capacity  disk  drives  to 
ensure  fast  access.  In  those 
cases,  users  are  spending 
money  for  a  significant 

ompanies  are  parts  and  increased  power  ductor  market  analyst  at 

M  m  slowly  starting  to  efficiency  could  justify  the  Objective  Analysis  in  Los 

more  closely  evalu-  significant  upfront  cost.  Gatos,  Calif.,  estimates  that 

ate  solid-state  stor-  His  analysis  found  that  the  average  cost  of  a  solid- 

age  technologies,  though  “the  cost  is  still  too  expen-  state  drive  today  is  $5,000, 

capacity.  A  solid-state  drive 
offers  top  performance  even 
when  it’s  filled  to  capacity, 

“That  is  like  the  easy  prey 

cost  to  come  down  before  Loffredo  said  the  com-  high-speed,  platter-based 

implementing  it  pany  is  holding  off  on  any  hard  drive. 

Several  users  interviewed  testing  of  solid-state  drives  Despite  the  wide  cost 

for  the  use  of  enterprise 
solid-state  drives,”  especial¬ 
ly  for  businesses  running 

The  Smarl-UPS®  closet  solution: 
managed,  secured,  cooled. 


t  you  never  thought  you'd  end  up  with  so  mar 
)r.  And,  as  they've  grown  in  numbers,  they've 
nplexity,  adding  to  the  risk  -  and  the  high  cos 


Network  management  enabled  UPS 


for  servers,  and  voice  and  data  networks 
•Intelligent  battery  management 


rtunately,  APC  has  engineered  an  integrated  solution  that 
th  new  Smart-UPS  XL  -  the  Smart-UPS  you  already  know 


Management  upgrades 

PowerChute'  Business  Edition 

Reliable  network-based  shutdown  of  multiple  servers. 
Included  with  Smart-UPS.  Upgrades  _______ 

available  starting  at  $279  p§  J  fc- — i  | 

•Application  shutdown  support  f-i.  j  ■?-  I 

•Battery  caoacitv  indicator  L  J 


InfraStruXure'  Central 

Provides  an  efficient  way  for  organiza 
their  company-wide  physical  infrastn 
•Real-time  device  monitonng 


_  •Real-time  capacity  monitoring 

Find  APC  power  protection  products  at  CDw)  '***“' 

Register  to  WIN  a  Smart-UPS*  XL  1400VA 
Rackmount  -  a  $779  Value! 

m  www.apc.com/promo  and  enter  key  code  e182w  •  Cal  888-289-APCC  x9685  •  Fax  401-788-2797 


NetBotz'  Security  and  Environmental  starts  at  $889 
Protecting  IT  assets  from  physical  and  environmental  threats 
•Visual  monitoring  of  all  activities  in 
the  data  center  or  wiring  closet 

•  Third-party  monitoring  via  dry-contacts 

SNMP,  m  0-5Vand4-20mA 
•User-configurable  alarm  and  escalation  policies 

•  Temperature,  humidity,  and  leak  detection 


Wiring  Closet  Ventilation  Unit 


InfraStruXure1  InRow  SC  starts  at  $7200 
lUp  to  7kW)  Rapidly  deployable,  in-row  air 
conditioning  for  server  rooms  and  wiring  closets 

•Network  manageable 
•Real-bme  capacity  monitoring 
•Modular,  scalable 
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■  NEWS  ANALYSIS 


Continued  from  page  12  Crump  said.  The  technology 

could  benefit  from  using  is  best  for  “read-heavy  ap- 
solid-state  storage  products  plications,”  he  added. 


users  —  if  the  price  was 
right.  Most  of  the  company’s 
agents  save  old  e-mails  to 
use  in  future  communica¬ 
tions  with  past  clients.  Stor¬ 
ing  the  documents  from  that 
many  users  requires  strong 
storage  and  retrieval  speeds, 
Loffredo  said. 

George  Crump,  an  analyst 
at  Storage  Switzerland  LLC, 
predicted  that  many  com¬ 
panies  will  start  turning  to 
solid-state  storage  systems 
once  they  can  prove  that  they 
significantly  boost  business. 

Businesses  like  stock  trad¬ 
ers  and  financial  services 
firms,  which  depend  heavily 
on  fast  data-flow  speeds. 


UNOERINO  SKEPTICISM 

John  Webster,  an  analyst  at 
Ilhuninata  Inc.,  said  that  en¬ 
terprise  buyers  are  starting  to 
understand  the  technical  and 
performance  benefits  of  solid- 
state  drives,  but  most  believe 
they  can  get  by  without  them. 
“It’s  the  typical  response,” 
he  said.  They  are  “a  little  bit 
skeptical  at  this  point." 

Raphael  Garcia,  a  backup 
and  storage  administrator 
at  the  Queens  Library  in  Ja¬ 
maica,  N.Y.,  said  solid-state 
technology  could  save  his 
organization  money  over  the 
long  run,  but  as  a  public  en¬ 
tity,  the  library  lacks  start-up 
funding.  “Cost  is  still  kick- 


Ultimately,  the  per¬ 
formance  benefits  of  the 
technology  could  force  the 
firm  to  spend  the  extra  dol¬ 
lars.  "Without  speed,  we're 
dead,”  he  said. 

Oppenheimer  &  Co. 
doesn’t  need  the  new  tech¬ 
nology  at  this  point,  said 
Michael  McCardle,  storage 
technology  manager  at  the 
New  York-based  financial 
services  company. 

“A  lot  of  bleeding-edge 
technologies  are  real  nice,” 
he  said.  “But  when  you  boil 
it  all  down,  how  much  of  it 
do  you  really  need?” 

Today,  Oppenheimer  has 
hard  drive  storage  technolo¬ 
gies  that  provide  adequate 
speed  at  costs  that  can  be  ra¬ 
tionalized  for  the  company's 
4,000  or  so  users,  McCardle 


about  $180,000.  compared 
with  about  $1  million  for  the 
same  amount  of  DRAM 
based  storage.  “DRAM 


in  0.015  milliseconds,  operate 
at  a  random  speed  of 400,000 
I/O  tasks  per  second.  Crump 
said.  The  drives  are  best  for 


write-intensive  software 
and  for  businesses  that  use 
high-performance  database 


A  lot  of  bleeding-edge 
technologies  are  real  nice. 
But  when  you  boil  it  all  down, 
how  much  of  it  do  you  really  need? 


said.  “It  goes  back  to  the 
needs  of  the  business,”  he 
said.  “If  the  need  doesn't  exist, 
then  the  interest  is  minimal.” 

The  company’s  storage 
technology  needs  are  re¬ 
evaluated  when  business  re¬ 
quirements  change,  but  “the 
purse  strings  are  very  tight 
these  days,”  he  noted.  “Until 
we  feel  pain  that  will  drive 


technologies  like  solid-state 
storage  won’t  happen. 

A  storage  architect  at  a 
New  York-based  publishing 


his  company  has  t 
solid-state  storage 
ogy  but  hasn’t  yet 


Handy  noted  that  to  date, 
only  a  small  percentage  of 
solid-state  drives  sold  are 
used  by  large  IT  organiza¬ 
tions.  Of  about  500,000  sold 
annually  today,  only  20,000 
are  purchased  by  corporate 
IT  operations. 

Objective  Analysis  proj¬ 
ects  that  the  number  of 
solid-state  storage  devices 


lag  far  behind  shipments  of 
hard-disk  products,  which 
Handy  projects  will  reach 
800  million  in  2013. 

Meanwhile,  IDC  estimates 
that  solid-state  drive  sales 
totaled  $396  million  in  2007 
and  that  the  total  will  grow 
at  a  70%  compound  annual 
growth  rate  through  2012, 
said  Jeff  Janukowicz,  an 
analyst  at  the  firm.  Over  the 
long  term,  he  said,  “the  real 
growth  engine  will  be  de¬ 
rived  from  new  markets  that 
solid-state  drives  are  just 
now  beginning  to  penetrate. 
Thus,  we  think  the  future 
continues  to  look  bright.” 

To  push  the  new  technol¬ 
ogy  into  corporate  data  cen¬ 
ters,  the  Storage  Networking 
Industry  Association  last 


the  benefits  of  the  technology 
and  to  foster  standards,  said 
Phil  Mills,  secretary  of  the 
SNIA  board  of  directors.  ■ 


a  THE  CDW  TECHNOLOGY 
STIMULUS  PACKAGE 

HOW  CAN  CDW  HELP  YOU  GET 
THROUGH  TOUGH  TIMES? 
WITH  THE  RIGHT  TECHNOLOGY 
AT  THE  RIGHT  PRICE. 


CDW.com/bestdeals  800.652 .4CDW 


■  NEWS  ANALYSIS 

Microsoft  Looks 
To  Unlock  Door 
To  Wider  Bl  Use 

Its  new  plan:  Scale  up  SQL 
Server  to  support  larger  data 
warehouses,  and  use  Excel 
to  spread  business  intelligence 
to  more  users.  By  Eric  Lai 

SQL  SERVER  may  other  Office  applications. 

be  one  of  the  most  In  particular,  Excel  may 

popular  databases  turn  out  to  be  Microsoft’s  BI 

among  corporate  ace  in  the  hole, 

users,  but  Microsoft  Corp.  The  ubiquitous  spread- 
is  a  relative  laggard  in  sheet  is  already  the  most 

the  business  intelligence  popular  front-end  program 

market.  It  ranked  just  fifth  among  business  analysts 

among  BI  vendors  last  year,  and  other  workers  looking 
according  to  market  re-  to  display  and  analyze  the 

search  firm  IDC.  results  of  BI  queries,  said 

But  Microsoft  last  week  James  Kobielus,  an  analyst 

detailed  a  multipronged  at  Forrester  Research  Inc. 

strategy  aimed  at  scaling  up  Now,  via  a  self-service 

the  size  of  the  data  ware-  analysis  project  code-named 

houses  that  SQL  Server  can  Gemini,  Microsoft  plans 
support  into  the  hundreds  of  to  develop  “an  Excel-based 
terabytes  while  also  —  in  the  user  analytics  mashup 
vendor’s  words  —  democra-  tool”  designed  to  make  it 
tizing  BI  within  companies  easier  for  end  users  to  build 

through  the  use  of  Excel  and  their  own  BI  applications, 


LACKING  RESOURCES 

David  Smith,  CIO  at  ServiceU 
Corp.,  an  event  management 
and  ticketing  services  pro¬ 
vider  in  Memphis,  said  his 
IT  staff  has  “a  limited  num¬ 
ber  of  man-hours"  that  it 
can  devote  to  BI  projects  for 
end  users.  And  he  doesn’t 
think  ServiceU  is  alone  in 
that  regard. 

“Microsoft  has  cor¬ 
rectly  determined  that  the 
limiting  factor  for  most 
businesses  to  implement 
significant  BI  projects  is  the 
scarcity  of  IT  resources,” 
Smith  said.  In  some  cases, 
that  means  workers  are 
shut  out  from  using  BI  tools, 
he  added.  But  to  Smith, 
Gemini  appears  to  offer 
a  way  of  making  analytic 
capabilities  available  on  a 
much  broader  scale. 

Mayur  Raichura,  vice 
president  of  information 
services  at  Long  &  Foster 
Real  Estate  Inc.  in  Chan¬ 
tilly,  Va.,  also  thinks  that 
Microsoft’s  plan  will  enable 
more  users  to  analyze  data 
without  IT’s  help. 

And  Excel’s  ability  to 
handle  millions  of  rows  of 
data  in  memory  should  make 
it  possible  for  Long  &  Foster 
to  examine  large  amounts 
of  data  from  the  company’s 
transaction  systems  and  its 
Web  site  search  logs,  accord¬ 
ing  to  Raichura.  If  so,  that 
will  “position  us  to  deliver  a 
better  financial  analysis  in  a 
real-time  mode,”  he  said. 

At  its  second  annual  BI 


deployments.  To  help  with 
that,  Microsoft  detailed  an¬ 
other  project,  code-named 
Madison,  under  which  it 
will  integrate  SQL  Server 
2008  with  technology  devel¬ 
oped  by  Datallegro  Inc.,  a 
data  warehousing  appliance 
vendor  that  Microsoft  ac¬ 
quired  last  month. 

Microsoft  has  plenty  of 
catching  up  to  do  with  other 
vendors  at  the  high  end  of 
the  BI  market,  Kobielus  said. 
SQL  Server  typically  scales 
only  “into  the  dozens  of 
terabytes”  now,  he  noted. 

The  Madison  technology 
will  be  able  to  handle  work¬ 
loads  involving  hundreds  of 
terabytes  of  data  and  thou¬ 
sands  of  users,  Microsoft 
said.  The  company  demon¬ 
strated  a  150TB  database 
running  24  instances  of 
SQL  Server  2008  at  the  con¬ 
ference.  A  CTP  version  is 
due  within  12  months.  And 
Microsoft  said  it’s  working 
with  server  and  storage  ven¬ 
dors,  including  Dell,  EMC 
and  Hewlett-Packard,  to 
give  users  “an  appliance-like 
buying  experience.” 

But  even  with  the  addition 
of  Datallegro,  Microsoft  is 
well  behind  rivals  such  as 
Teradata  Corp.  in  high-end 
market  share.  Curt  Monash, 

analyst,  said  that  although 
Datallegro’s  technology  was 
strong,  the  appliance  vendor 
had  few  customers  before 
Microsoft  bought  it.  ■ 

contributed  to  this  story. 
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When  your  company  is  on  one  network,  it  can  be  truly  flexible. 


Sprint 


Rambam  has  worked  on  some  high- 
profile  cases,  including  tracking  down 

Nazi  war  criminals  in  Canada.  He  also 
owns  PallTech  (www.pallorium.coni/ 
PallTech.html),  an  investigative  data¬ 
base  service  with  more  than  25  billion 
records  on  U.S.  citizens  and  businesses. 

■  THE  ORILL 

Steven  Rambam 

What  do  you  do  as  a  private  investigator? 

We  are  not  the  traditional  Rockford 
or  Magnum,  PJ.  type  of  investigator. 

We’ll  do  very  difficult  missing  persons 
cases,  a  lot  of  sophisticated  financial 
fraud  work,  a  lot  of  insurance  company 

The  private  eye  talks  about  what  he 
does,  how  he  knows  everything  about 
you  and  why  he’s  not  the  one  you 
should  be  worried  about. 

work,  a  lot  of  disappearances. 

Whaft  In  your  PalTach  databaaas?  We 

have  pretty  much  every  American’s 
name,  address,  date  of  birth.  Social  Se¬ 
curity  number,  telephone  number,  per¬ 
sonal  relationships,  businesses,  motor 

Continued  on  page  20 
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ALTERNATIVE  THII 


ABOUT  SERVICE  MANAGEMENT: 


Alternative  thinking  is  repositioning  IT  from  the  server  closet 
to  the  front  lines,  embracing  its  impact  on  the  business 
(seeing  it  go  from  a  PowerPoint*  deck  into  practice). 

It's  placing  business  metrics  under  the  microscope  every  day, 
every  minute,  every  nanosecond — enhancing  insight  and 
extending  control  (from  a  financial  perspective,  for  o  change). 

It's  rewiring  the  rules  of  engagement  to  identify  problems, 
prioritize  solutions  and  automate  change  (before  things 
become  business  critical). 

It's  partnering  with  HP,  a  pioneering  force  behind  ITIL, 
to  leverage  the  experience  of  certified  consultants  and 

utilize  the  ingenuity  engrained  in  the  DNA  of  our  software. 


■  THE  GRILL  i  STEVEN  RAMBAM 


^4* 


\ 

I  have  in 
my  office 


that  are  far  more 
powerful  and  com¬ 
prehensive  than 
J.  Edgar  Hoover’s 
wildest  dreams. 


evil  people  trying  to  be  the  new  Big 
Brother.  It's  because  this  is  truly  a  new 
engine  of  capitalism.  Where  it  gets  a 
little  creepy  is  when  they  aggregate  all 
of  this  data  together  and  have  an  ex¬ 
traordinary  profile  of  you. 


dial  capital,  particularly  whan  if*  in  elec¬ 
tronic  form?  You  can  have  five  firewalls 
in  a  safe  room  with  the  most  current 
locks  monitored  by  24/7  motion¬ 
detecting,  IP-addressable  cameras,  and 
all  of  that  is  meaningless  if  a  16-year- 
old  kid  can  social-engineer  a  root  pass¬ 
word  out  of  you.  The  downside  to  all 
of  this  publicly  available  information 
is  that  it's  now  a  lot  easier  to  social- 
engineer  somebody. 


Continued  from  page  18 

vehicles,  driver’s  licenses,  bankruptcies, 

liens,  judgments  —  I  could  go  on  and  on- 


database  that’s  restricted  to  law  en¬ 
forcement,  private  investigators,  secu¬ 
rity  directors  of  companies  and  people 


How  do  you  safeguard  it?  The  most  re¬ 
strictive  rule  is  my  own  personal  eth¬ 
ics.  In  20  years,  we  haven’t  had  a  single 
lawsuit  or  complaint. 


yarn?  They  should  if  they  don’t  want  a 
back  door  or  a  Trojan  [horse]  on  their 
system.  A  year  ago,  a  company  called 
me  from  Hong  Kong  and  said,  “We’re 
being  extorted.  We're  getting  e-mails 
from  an  individual  saying  if  we  don’t 
give  a  series  of  payments  through 
PayPal,  he  is  going  to  take  [our]  source 
code  and  post  it  on  the  Internet.” 

We  were  able  to  determine  who  the 
guy  was  in  24  hours.  He  was  a  14-year- 
old  kid  in  California. 

What  about  smur  campaigns  mi  the 
Web?  H  you’re  a  victim,  what  should  you 
do  about  it?  You  have  to  have  zero  tol¬ 
erance.  You  have  to  find  out  who  the 
person  is,  and  you  have  to  sue  them 


—  that  has  been  available  to  the  public 
since  1991.  Why,  I  can’t  begin  to  guess. 

Another  slippery,  slimy  thing  is  that 
the  FBI  has  signed  contracts  with  some 
private  data  providers.  Polygraphs 
[and]  background  investigations  are 
being  outsourced,  and  the  Freedom  of 
Information  Act  does  not  apply.  If  you 
say  to  the  FBI,  “I  want  the  report  that 
ChoicePoint  furnished  to  you  about 
me,”  they  say  to  you,  “Sorry,  we  can’t 
give  that  to  you.  That’s  a  private  busi¬ 
ness  record.”  This  is  really  a  fairly  sin¬ 
ister  development.  And  it's  one  that’s 
profoundly  un-American. 

Ohwn  the  amount  of  personal  information 
out  than  and  the  fact  that  you  aggregate 
it,  does  the  public  haw  reason  to  tear 
the  misuse  of  personal  data  controlled 
by  PaHTech  or  other  aggregators?  No, 
because  frankly,  we  are  more  account¬ 
able  than  the  U.S.  government.  You 
can  sue  us;  you  can  subpoena  us.  You 
can  hold  us  to  task  if  we  do  something 
improper.  Not  so  the  U.S.  government. 

Can  people  protect  their  privacy  by  creat¬ 
ing  an  anonymous  Web  presence?  If  you 

think  when  you  do  a  search  on  Google 
that  because  you’re  not  logged  in  and 
your  IP  address  is  being  assigned  from 
a  Verizon  pool  that  you’re  anonymous, 
that’s  ridiculous. 

So  where  are  we  going?  Privacy  is  dead. 
Get  over  it.  You  can’t  put  the  genie 
back  in  the  bottle. 

—  Interview  by  Robert  L.  Hitched 
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li)e  of\lf  HJisL  alifl'  fh t  Jrfic*  (knit,  5*  u>£- 

better  ftink  /M *M  it-  Mfinifisfr/nfaM 
■Scaifify  ars&boj  «r filrfa/trM  iriffottftcfrre?" 

»  Want  It  all?  There  is  one  way  to  remain  profitable  and  competitive  while  growing  the 
network  to  meet  user  needs  —  and  still  restrict  nonjob  related  access  to  keep  your 
enterprise  safe:  Call  Juniper. 

Juniper  . 

vl°uf 

Juniper  Networks'  security  and  infrastructure  solutions  power  high-performance 
business,  securely  linking  employees,  vendors,  customers  —  everyone  —  with  the 
resources  they  need.  It’s  real-time  applications  and  services  any  time,  all  over  a 

O  Net. 

plus  the  scalability  your  business  model  demands.  Leverage  your  network  —  more 
securely  and  cost-effectively  —  for  greater  productivity.  The  switch  is  on  to  compre¬ 
hensive  network  security:  www.Juniper.net/access 

1.888. JUNIPER 

Steven  J.  Vaughan-Nichols 


ttgh-Performance 

Nonsense 


ever  meant  for  high-e 
computing. 

Despite  all  this,  I’vi 
been  reading  compar 
between  Windows  H 


UIZ  TIME.  Get  out  your  No.  2  computers  and 

answer  the  following  question:  For  the  fastest  and  stack  s.  The  discussk 

most  reliable  high-end  computing  for  your  enter- 

prise,  will  your  operating  system  be  1)  Linux,  2)  while  looking  at  th 

meriVMS  or  4)  Windows? 


•prise  Assurance 
lance  agreement 
ent  Access  Licen 
get  real.  Window 


Microsoft,  after  spending 
decades  paying  no  real  at¬ 
tention  to  high-performance 


enterprise  s  mo 
tant  high-speed 


you  believe  it?  Yes,  there  was  ric  vendor  hasn’t  jumped  on  Wind 

Windows  Compute  Cluster  through  Microsoft’s  driver  Linux,  Solaris,  OpenVMS  I  by  itself, 
Server  2003.  After  a  long  hoops,  you  won’t  be  able  and  other  high-end  operat-  |  inHPC. 


He  told  me,  “Updates  that 
require  reboots  are  far  too 
frequent  for  production-use 
systems,”  “Jobs  randomly 
crash,"  and  “Few  HPC  ap¬ 
plications  actually  support 
Windows  compute  nodes." 

Will  HPC  Server  2008 
be  any  better?  1  don’t  see 
how  it  can  be,  really.  On  the 


HPC  Server.  For  example, 
QLogic  has  just  started 
working  on  beta  drivers 
for  its  InfiniBand  network- 


■  Will  HPC  Server 
2008  be  any  good? 
I  don't  see  how  it 
can  be,  realty. 


support  and  working  HPC 
applications.  To  do  HPC 
right  is  always  challenging, 
but  there  are  already  many 
excellent  products  out 
there.  I  just  can’t  imagine 
trying  to  build  a  corporate 
'HPC  at  this  point  on  not 
only  an  unproven  operating 
system,  but  one  that’s  based 
on  a  system  that  was  never. 


you’re  getting  from  Micro¬ 
soft;  there’s  no  way  you,  or 
anyone  else,  can  afford  Mi¬ 
crosoft  HPC  Server  2008.  ■ 
Steven  J.  Vaughan-Nichols 
has  been  writing  about 
technology  and  the  business 
of  technology  since  CP/M-80 
was  cutting-edge  and 
300bit/sec.  was  a  fast  Inter- 


Telecommuting  is  back  on  workers' 
radars  in  a  big  way  these  days,  thanks 
to  gas  prices  that  were  a  whopping 
30%  higher  this  summer  than  last. 

Telecommuter  wannabes  are  lining 
up  outside  their  bosses’  offices  with 
work-from-home  plans  in  hand,  and  many  of  them 
could  get  their  wish  this  time  around:  According  to 
WorldatWork,  an  association  of  human  resource  pro¬ 
fessionals,  40%  more  employers  are  offering  telework 
programs  this  year  than  last  year.  Should  your  IT  em¬ 
ployees  be  part  of  that  burgeoning  crowd? 

many  of  the  benefits  of  tele- 


It's  certainly  tempting 
to  say  yes.  Increasing  fuel 
costs  and  heightened  cor¬ 
porate  environmental  con¬ 
sciousness  are  magnifying 


work,  including  conserving 
fuel  (and  money),  reducing 
traffic  congestion  (and  C02 
emissions),  and  reducing 


space  and  energy  use  at 
the  employer's  facility.  Em¬ 
ployers  also  often  find  that 
they're  better  able  to  attract 
and  retain  talented  workers 
with  the  flexibility  and  in¬ 
creased  job  satisfaction  that 
telework  programs  offer. 

All  of  that  is  driving  a 
huge  number  of  inquiries 
from  organizations  looking 
to  deploy  more  systematic, 
companywide  telework  pro¬ 
grams,  says  Josh  Holbrook, 
an  analyst  at  Yankee  Group 
Research  Inc. 

That  said,  IT  and  tele¬ 
work  don’t  have  an  unblem¬ 
ished  record  of  success.  In 


2006,  Hewlett-Packard  Co. 
ended  teleworking  arrange¬ 
ments  for  hundreds  of  its 
IT  workers.  And  early  this 
year,  Intel  Corp.  began  re¬ 
quiring  more  than  half  the 
teleworkers  in  its  IT  group 
to  report  to  the  office  at  least 
four  days  a  week.  In  both 
instances,  the  companies  in¬ 
dicated  that  teleworking  had 
had  a  negative  impact  on  IT 
employee  productivity  and 
collaboration. 

Although  a  few  reversals 
of  telework  policy  do  not 
constitute  a  trend,  those 
cases  should  caution  tech¬ 
nology  managers  who  might 


By  Tam  Harbert 


only  four  hours  a  day.  is  that 
a  win-win  situation  or  poor 
use  of  that  employee? 

“People  say  they  manage 
by  results,  but  they  also  like 
to  know  whether  the  person 
is  only  active  a  few  hours  a 
day."  says  Eric  Spiegel.  CEO 
and  co-founder  of  software 
start-up  XTS  Inc.  In  a  previ¬ 
ous  job  as  an  IT  manager. 
Spiegel  had  bad  experiences 


chute."  Holbrook  warns. 

Some  telework  decisions 
are  fairly  obvious.  Most 
managers  wouldn't  let  a 
new.  inexperienced  em¬ 
ployee  telework  until  he  had 
proved  himself,  for  example. 
But  there  are  other,  more 
subtle  aspects  of  a  person's 
character  and  work  style 
and  a  company’s  culture 
that  can  make  or  break  a 
telework  arrangement. 


■  COVER  STORY 


nal  of Management  suggests 
that  allowing  insufficiently 
screened  employees  to  work 
more  than  three  days  a  week 
outside  of  the  office  results 
in  long-term  decreases  in 
productivity  and  morale  and 
increases  in  staff  turnover. 
“They  move  on  to  jobs  where 
they  feel  more  included.' 


e  company,  lor  work  in  another  office.  should  never  be  an  all-or- 

- ^nue  te*e"  1“  fact,  there  is  a  higher  nothing  proposition.  And 

iation  proj-  working.  “It  becomes  a  life-  degree  of  churn  among  whether  you  ultimately  de- 

!  employees  style,”  notes  Keefe.  “I’ve  had  teleworkers  today  than  in  cide  to  allow  an  employee  to 

he  office.  a  couple  of  key  people  leave  the  past,  according  to  Sean  work  from  home  full  time, 

:he  person  is  the  organization,  so  now  I’m  Ryan,  an  analyst  at  IDC.  Sta-  Dart  time  or  not  at  all 


■  Q&A  !  MUKTI  KHAIRE 


the  diverse  skills  they  would 
bring  to  any  problem. 

Nut  conies  collaboration.  You 
talk  about  using  analogies  and 
metaphors  to  gat  people  fo¬ 
cused.  When  you  are  trying 
to  achieve  something  really 
radical,  by  definition,  that 
doesn’t  exist.  So  if  people 
don’t  have  a  sense  of  where 
they  are  going,  it’s  hard  to 
rally  around  it.  That’s  where 
metaphors  and  stories  and 
analogies  work,  because  it 
gives  them  a  sense  of  what 
they’re  working  toward 
—  for  example,  “We  want 
to  build  the  Facebook  of 
knowledge  management.” 


In  IT  particu¬ 
larly,  yesterday’s 
innovation  is  today’s 
commonality. 


ThsnmsaMofdbcus- 
sten  of  Dm  rota  of  dhnrsity. 

On*  intonating  point  was  tbs 
value  of  identity  integration  to 
enhance  creativity.  Can  you 
explain?  People  are  complex 
and  identify  with  different 
roles  at  different  times  and 
in  different  contexts,  but  the 
real  punch  is  packed  when 
people  can  draw  from  each  of 
the  aspects  of  their  identity 
to  apply  diverse  perspectives 
to  a  situation.  Take  engineers 
who  are  also  designers.  If 
they  express  both  sides,  that 
Continued  on  page  33 


The  Creativity 
Conundrum 


You  can’t  manage  creativity, 
but  you  can  manage  for  it. 
Here’s  how. 


Recently,  a  two-day  collo¬ 
quium  at  Harvard  Business 
School  brought  together  busi¬ 
ness  leaders  from  innovative 
companies  such  as  Google, 

E  Ink,  Novartis  and  Ideo  to 
discuss  creativity  in  organiza¬ 
tions.  In  this  month's  Harvard 


sistant  professor  at  Harvard 
Business  School,  shared  some 
key  insights  with  Computer- 
world’s  Kathleen  Melymuka. 


Why  is  creativity  suddenly 
coming  off  the  back  burner? 

When  business  is  more  dif¬ 
ficult  and  things  more  com¬ 
petitive,  everyone  is  trying 
to  run  faster  than  everyone 
else  to  get  answers,  so  you 
need  to  keep  finding  novel 
solutions  to  the  problems 
everyone  faces.  That  is  what 
makes  creativity  more  im¬ 
portant  for  managers  today. 
In  IT  particularly,  yesterday’s 
innovation  is  today’s  com¬ 
monality.  People  catch  up 
even  faster  in  IT,  and  so  there 
is  demand  for  newer  systems 
all  the  time.  And  where  IT  is 
viewed  as  a  cost  center,  it’s 
even  more  important  to  add 
the  value  expected  of  IT. 

Lai's  tak  about  some  leader¬ 
ship  prioritfcs  in  managing  for 
creativity.  You  write  that  tha 
first  is  to  draw  on  the  right 
minds.  How  does  a  manager 
find  those?  We’re  not  say¬ 
ing  there  are  some  people 
in  charge  of  being  creative. 
But  in  terms  of  getting  the 
right  minds,  at  the  begin¬ 
ning  it  would  be  that  you 
have  a  certain  culture  and 
incentives  that  would  draw 
the  kinds  of  people  who  are 
willing  to  take  some  risk 

—  personal  and  professional 

—  to  do  something  different 
Then  you  want  to  not  have 
one  particular  type  of  “right 
mind”  or  one  idea  of  what 
the  right  mind  would  be.  You 
want  diverse  capabilities  and 


Making  IT  work  as  one.  It's  what  sets  us  apart. 

At  Novell,  we're  taking  interoperability  to  a  whole  new  level.  We  believe  every  persoa  every 
partner  and  every  piece  of  your  mixed-!T  world  should  work  as  one.  Our  Enterprise  Linux, 
Security  and  Identity  Management,  Systems  Management  and  Collaboration  solutions 
easily  integrate  with  just  about  any  IT  infrastructure.  So  you  can-lower  cost,  complexity  and 
risk  on  virtually  any  platform  and  make  your  IT  work  as  one, 

www.novell.com  Novell, 

Making  IT  Work  As  One™ 


Best  Practices 

|  IN  BUSINESS ^INTELLIGENCE 

SPONSORED  BY: 

Cognizant 


congratulations 
Award  Recipients! 

Business  Intelligence  Perspectives  proudly 
announced  the  results  of  this  year’s  "Best  Practices 
in  Business  Intelligence"  Awards  Program.  This 
program  honors  IT  users  "Best  Practice"  case 
studies  selected  from  a  field  of  qualified  finalists. 

Honoree  Awards  Recipients  in  each  of  the  following  categories  were  recognized 
at  Business  Intelligence  Perspectives  in  Phoenix,  Arizona,  on  September  10th: 

Finalists  in  each  of  the  following  categories  are: 

Creating  an  Agile  Bl  Infrastructure _ 

Marriott  International,  Inc.,  Bethesda,  Maryland 

Finalists:  •  Abbott  International,  Abbott  Park,  Illinois 

•  DSPS  IT  Delivery  and  Retail  Business  Systems  Portfolio,  Washington,  DC 

•  United  Network  of  Organ  Sharing,  Richmond,  Virginia 

•  USCG,  Office  of  Performance  Management  and  Decision  Support, 
Washington,  DC 

Driving  Process  Management  with  Bl _ 

FedEx  Services,  Collierville,  Tennessee 

Finalists:  •  New  York  City  Department  of  Information  Technology 
and  Telecommunications,  New  York, 
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Continuedfrom  page  30 
allows  for  Pixar  and  Toy  Sto¬ 
ry.  To  integrate  facets  of  both 
identities  leads  to  the  whole 
being  greater  than  the  sum  of 
its  parts.  People  do  this  a  lot 
in  daily  life,  but  we  tend  to  do 
it  at  a  more  superficial  level. 

And  at  week,  people  often  (and 
to  do  the  exact  opposite.  For 
example,  a  woman  in  IT  may  try 


idea  from  being  deflated  by  di- 
*eree  input?  I  think  it's  a  ques¬ 
tion  of  stage.  You  start  with 
brainstorming,  a  nonjudg- 
mental  search  for  ideas.  There 
you  want  as  much  diversity 
of  input  as  possible.  At  a  later 
stage,  if  marketing  comes 
back  and  says,  “This  needs  to 
be  modified,"  if  the  need  for 
that  is  not  just  to  make  things 
easier  for  them  but  because 
of  real  consumer  feedback  to 
increase  usability,  there  is  still 
space  to  accept  that.  But  when 


but  who  I  am  may  really  have 

square  peg  into  a  round  hole 

some  bearing  on  a  problem. 

because  they  just  don't  want 

to  make  a  square  hole,  that’s  a 

You  also  discuss  the  need  to 

problem.  So  you  need  to  have 

look  outside  tho  organiza¬ 

incentives  throughout  the  or¬ 

tion.  Can  you  discuss  open 

ganization  so  that  the  norm 

source  from  tho  nonsoftwaro 

is  to  have  everybody  engaged 

perspective?  Essentially,  the 

in  novelty  rather  than  trying 

meaning  of  the  term  is  “open 

to  make  life  easier. 

without  a  sense  of  competi¬ 

You  writ*  that  innovation  will 

tion.”  The  airplane  was  a 

never  happen  unless  people 

complex  enough  innovation 

art  motivated  to  work  at  their 

that  the  Wright  brothers 

creative  peak.  How  does  an 

alone  couldn’t  have  solved 

IT  manager  accomplish  that? 

1  the  problems.  In  the  early 

You  need  the  right  minds 

stages  of  that  invention,  there 

matched  to  the  right  project, 

were  a  lot  of  thinkers,  exactly 

and  you  need  to  make  sure 

like  the  open-source  people 

you’ve  provided  enough  of 

today,  working  on  smaller 

an  intellectual  challenge.  But 

aspects  of  the  larger  prob¬ 

the  intellectual  challenge  has 

lem.  Collaboration  toward 

to  be  matched  with  skills. 

the  greater  goal  united  all  of 

If  it’s  too  challenging,  that’s 

them.  Once  the  Wright  broth¬ 

frustrating.  But  if  it’s  not 

ers  recognized  the  commer¬ 

challenging  enough,  that’s 

cial  and  military  potential, 

not  stimulating  and  leads  to 

it  became  more  competitive. 

boredom  and  demotivation 

But  before  that,  it  was  very 

and  quick  solutions  that  are 

similar  to  what  we  see  in 

not  optimal.  So  you  need  to 

open-source  platforms  today 

have  not  just  the  right  minds, 

—  which  only  goes  to  show 

but  also  an  understanding 

that  this  notion  that  people 

of  what  people  want  so  you 

will  contribute  freely  to  a 

have  the  right  incentives. 

particular  idea  is  not  new. 

tangible  and  also  intangible. 

You  note  that  as  crMUwldMt 

ThatliaaUngaMofamanag- 

chum  through  tho  bureau¬ 

sr.  Yes.  But  if,  as  a  manager, 

cracy,  thoytand  to  pot  bsatan 

you  are  collaborative  and  col¬ 

into  the  shapt  of  tho  existing 

legial,  then  you  would  know 

business  modsl  and  tooathotr 
innovative  power.  So  whore  Is 

input  and  the  nssd  to  protect  an 

this  about  the  people  you 
work  with  and  would  be  able 
to  do  this  right.  Good  man¬ 
gers  do  this  automatically.  ■ 

OCTOBER  l; 
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After  two  decades  of  significant  investment  in  IT, 
it's  clear  that  greater  spending  doesn't  necessarily 
deliver  greater  results.  Accenture's  groundbreaking 
study  of  over  500  high-performance  businesses, 
as  well  as  our  hands-on  experience  with  the  world's 
leading  companies,  has  given  us  pragmatic, 
real-world  insights  into  what  works,  what 
doesn't,  and  why.  Because  it's  not  how  much  you 
put  into  your  IT  that  cmftts  It's  how  much  you 
get  out  of  it. 
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■  SECURITY 


Watchdog 

Undenlog 


In  data  security,  many 
of  the  toughest  challenges 
have  nothing  to  do  with 
the  bad  guys.  By  Lisa  Vaas 


Think  your  security 
staffers  are  trust¬ 
worthy?  Competent? 
Knowledgeable? 
Listen  to  a  security  profes¬ 
sional's  horror  stories,  and 
you  might  think  again. 

Here’s  one  from  Kevin 
McDonald,  executive  vice 
president  at  managed 
services  provider  Alvaka 
Networks,  author  of  several 
books  on  cybersecurity  and 
a  member  of  the  AeA  tech¬ 


nology  trade  association: 

A  construction  company 
client  of  his  had  a  senior 
IT  person  who  was  also  in 
charge  of  security.  Some¬ 
how,  this  head  of  security 
convinced  the  firm’s  owner 
that  it  would  be  cheaper 
to  store  various  company 
databases  at  his  own  home, 
where  he  already  had  fiber¬ 
optic  lines  installed,  rather 
than  elsewhere  off-site. 


Youca 


:e  this  or 


ing  a  mile  away:  A  conflict 
arose  between  the  employee 
and  his  employer.  Before 
you  could  say  “internal 
threat,”  the  security  worker 
was  sending  threatening 
e-mails  to  the  construction 
firm’s  customers,  telling 
them  that  he  had  their  pri¬ 
vate  information. 

The  action  “fundamen¬ 
tally  put  this  guy  out  of 
business,”  McDonald  says. 

It  took  six  months  to  shut 
down  the  rogue  employee, 
since  —  of  course  —  he 

Continued  on  page  38 
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Enterprise 

INTELLIGENCE 

AWARDS 

Sponsored  by 

Teradata 


Thank  you  to  our  Enterprise 
Intelligence  Awards  judges  for  2008: 

•  Andres  Mendes.  Special  Olympics 


Congratulations 
Award  Recipients! 

Computerworld  proudly  announced  the  results  of  this  year’s  Enterprise 
Intelligence  Awards  Program.  This  program  honors  best  practices  in  the 
use  of  information  technology  solutions  built  on  Teradata  platforms. 

Finalists  and  Winners  in  each  of  the  following  categories  were  recognized 
at  the  Enterprise  Intelligence  Awards  ceremony  on  October  13, 2008, 
at  the  2008  Teradata  PARTNERS  User  Group  Conference  &  Expo  held 
in  Las  Vegas. 

The  Winner  and  Finalists  in  each  category  are: 

Customer  Intelligence  and  Management 

Winner:  Hallmark  Cards,  Inc.,  Kansas  City,  Missouri 

Finalist:  Cisco,  San  Jose,  California 

Finalist:  Norfolk  Southern  Corporation,  Roanoke,  Virginia 

Excellence  in  Bl  and  Analytics 

Winner:  eBay  Inc.,  San  Jose,  California 

Finalist:  Medco  Health  Solutions,  Inc.,  Franklin  Lakes,  New  Jersey 
Finalist:  Verizon  Wireless,  Basking  Ridge,  New  Jersey 

Industry  Innovation 

Winner:  Medco  Health  Solutions,  Inc.,  Franklin  Lakes,  New  Jersey 

Finalist:  GE  Rail  Services,  Chicago,  Illinois 
Finalist:  RBC  Financial  Group,  Toronto,  Ontario 

Integrated  View  of  the  Business 

Winner:  Discover  Financial  Services,  Riverwoods,  Illinois 

Finalist:  FedEx  Services,  Collierville,  Tennessee 
Finalist:  Freescale  Semiconductor,  Austin,  Texas 


II.  Oglqft  Mather  Worldwide 


quested  anonymity.  “The 
problem  is,  the  perception 
of  C-level  execs  is  that  secu¬ 
rity  is  a  commodity  —  one 
[application]  is  the  same  as 
the  other." 

But  no  vendor  is  good 
at  everything.  Organiza¬ 
tions  whose  executives  buy 
bundles  do  save  money. 
Unfortunately,  they  often 
get  “really  subpar  security, 
sometimes  dangerously  so," 
says  the  head  of  security. 

So  how  do  you  convince  a 
boss  who's  sold  on  a  bundle? 
By  getting  security  personnel 
in  on  the  decision-making 
process  early,  well  before 
there's  money  on  the  table. 


good  relationships  are  key. 

“I  recommend  that  security 
get  users  to  buy  into  them  as 
people,"  advises  McDonald. 
“Do  ‘lunch  and  learn’  inter¬ 
nally.  Bring  staff  in,  bring 
management  in,  and  have 
them  understand  why  the 

lisar*- 

doubled  his  salary 
when  he  went  to 
the  private  sector. 

BOB  MAIEY.  CHIEF  INFORMATION 
SECURITY  OFFICER.  C0MM0N- 


McDonald  says.  “Ask  the 
employees  and  manage¬ 
ment,  ‘So,  I  have  these 
things  I’m  being  told  I  have 
to  do  —  say,  to  secure  PCI 
information,  or  to  protect 
assets  of  the  organization, 
and  do  other  things  man¬ 
dated  by  government.  What 
would  you  do  if  you  were  in 

Another  approach  is  to 
take  personalities  out  of  the 
equation.  That’s  what  the 


security  staffers  have  the 
chance  to  spot  cyberattacks 
as  they  hatch.  In  the  past 
six  months,  for  example,  his 
team  has  seen  three  variants 
of  the  Storm  Trojan  horse 
that  hadn't  been  spotted 
elsewhere. 

That’s  not  surprising, 
because  Symantec  Corp.’s 
recent  Internet  Security 
Threat  Report  cited  a  shift 
toward  attacks  aimed  at 
trusted  Web  sites,  such  as 
social  networking  or  gov¬ 
ernmental  sites. 

“I've  got  a  team  that  has 
the  opportunity  to  fight  that 
Continued  on  page  40 
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■  SECURITY 


Continued  from  page  38 
kind  of  stuff,  analyze  it  and 
be  on  the  leading  edge  in  the 
fight  between  the  bad  guys 
and  us,”  Maley  says. 

Recruits  get  hands-on 
experience  on  projects  that 
are  both  significant  and 
exciting,  Maley  adds.  For 
example,  in  order  to  halt 
repeated  virus  outbreaks,  a 
penetration-testing  rollout 


was  partially  automated 
with  tools  from  Core  Secu¬ 
rity  Technologies. 

Maley  also  coaches  his 
green  recruits  in  building 
their  resumes.  He  knows 
that  eventually  they’ll  leave, 
but  if  they're  bolstering  their 
credentials,  having  fun  and 
learning  in  the  meantime, 
chances  are  they’ll  stay  that 
much  longer.  That’s  a  trick 


STATEMENT  OF  OWNERSHIP,  MANAGEMENT  and  CIRCULATION 


that  any  revenue-challenged 
organization  can  employ  to 
good  effect 
Many  security  shops 
are  stuck  with  an  under¬ 
skilled  employee  or  a  se¬ 
curity  newbie.  If  you’re  in 
that  situation,  you’ve  got  to 
limit  the  staffer’s  potential 
to  blow  everything  up.  Do 
that  by  having  him  work  on 
less-critical  systems,  sug¬ 
gests  Anthony  Scalzitti,  a 
security  engineer  at  a  major 
security  software  company 
that  he  did  not  want  identi¬ 
fied.  For  example,  you  could 


f  f  The  problem 


■■  is,  the  per¬ 
ception  of  C-level 
is  that  — 


rity  is  a  commodity. 

HEAD  OF  SECURITY 
AT  A  SOFTWARE  VENDOR 


security  elitist  to  discover 
that  80%  of  incidents  are 
the  result  of  simple  oppor¬ 
tunistic  attacks. 

“In  information  security, 
there  are  so  many  opportu¬ 
nities  for  an  attacking  hack- 
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■  SECURITY  MANAGER’S  JOURNAL  J.F.  RICE 

Patching  Program 
Still  Under  Fire 


Trouble 

Ticket 

AT  ISSUE:  Setting  up  a 
regular  patching  cycle  will 
require  buy-in  from  the 
sysadmins  who  will  do  the 


Having  allies  on  the  business  side 
helps,  nut  the  sysadmins  who  will 
do  the  work  remain  unconvinced. 


tion  rap- 


~\/f  L*. 

started  talking  about  the 
need  to  proactively  man¬ 
age  the  vulnerabilities  on 
our  systems.  My  peers  — 
other  leaders  in  IT  at  this 
company  —  are  threatened 
by  my  open  approach  to 
change  and  by  being  put 
in  the  spotlight  by  the  new 
guy  in  charge  of  security. 
As  a  first  step  toward  re¬ 
solving  this  conflict,  I’m 
trying  to  build  alliances. 

IT  works  for  the  busi¬ 
ness,  and  the  people  in  the 
field  running  corporate 
operations  are  ITs  cus¬ 
tomers.  I  assumed  that 
the  business  owners  have 


services  IT  provides  them, 
and  that  gave  me  an  open¬ 
ing.  I  figured  that  if  I  could 
convince  the  business 
managers  that  vulnerabil- 


about  what  it  is  I’m  trying 
to  do,  they  become  sup¬ 
portive  of  the  idea  of  sta¬ 
bilizing  and  improving  the 
security  of  their  systems 
through  patching. 

The  IT  systems  ad¬ 
ministrators  and  their 
managers  are  the  people 
most  resistant  to  applying 
patches  —  and  it's  the  sys¬ 
admins  who  would  have  to 
actually  do  the  work.  Pre¬ 
dictably,  they  are  falling 
back  on  the  old  argument 
that  patching  destabilizes 
systems  and  causes  more 
problems  than  it  solves. 
I'm  trying  to  make  them 
see  it  from  the  viewpoint 
of  a  security  manager:  Un¬ 
patched  operating  systems 
are  a  huge  security  risk  in 
any  environment 

But  the  sysadmins  don't 
see  why  it’s  important 
to  do  the  updates  when 
everything  already  seems 
to  be  working.  Their  atti¬ 
tude  is  that  we  haven’t  had 


tant  to  their  operations, 
then  perhaps  I  could  add 
their  voices  to  mine  and 
thus  gain  credibility  and 
influence. 

So  far,  I've  had  success 
with  this  approach.  Once  I 
talk  to  business  managers 


■  I’m  trying 


any  problems  yet,  so  why 
should  they  incur  extra 
work  and  operational  risk 
just  to  make  the  security 
team  happy? 

I’m  trying  to  bridge  the 
differences  in  our  perspec¬ 
tives,  but  I'm  not  having 
much  luck.  Looking  only 
at  return  on  investment, 
the  sysadmins  have  a 
pretty  solid  argument. 
There’s  no  question  that  a 
comprehensive  patching 
program  is  expensive.  You 
have  to  test  the  patches, 
and  it  seems  as  if  there’s 
always  another  one  being 
released.  Then  you  have  to 
track  down  every  machine 
that  needs  the  patch  and 
make  sure  it’s  frilly  up  to 
date.  But  as  the  security 
manager,  I  have  to  look 
beyond  immediate  ROI.  A 
security  incident  could  be 
more  costly  than  an  ongo¬ 
ing  patching  program. 

PATCH  CATCH-UP 

I  feel  that  if  we  leave  our 
infrastructure  unpatched, 
our  servers  could  be 
vulnerable  to  a  breach, 
which  could  result  in 
devastating  losses.  It’s  a 
core  belief  of  mine  that  a 
mature  IT  infrastructure 
should  include  a  repeat¬ 


able,  ongoing  program  of 
vulnerability  remediation. 
But  explaining  that  to  sys¬ 
admins  who  don’t  want  to 
do  it  is  a  tall  order. 

Right  now,  I’m  focusing 
on  getting  all  our  systems 
up  to  date.  But  a  successful 
vulnerability  management 
program  depends  on  hav¬ 
ing  a  repeatable  process 
that  results  in  a  collection 
of  “snapshots"  of  the  over¬ 
all  security  posture  at  vari¬ 
ous  points  in  time.  These 
snapshots  tell  us  the  threat 
model  at  that  moment,  the 


protection  requirements, 
the  environment  being 
protected  and  the  state  of 
the  defensive  technology. 

A  successful  catch-up 
effort  will  give  us  our  first 
snapshot,  the  baseline. 

But  as  technology  and 
the  business  environment 
evolve,  the  technical  con¬ 
trols  that  are  part  of  this 
snapshot  will 
become  less  ef¬ 
fective.  That’s  O  JOIN  IN 


patch  cycle. 

Gaining  allies  is  bring¬ 
ing  us  closer  to  this  goal. 
I’U  keep  you  posted  on 
how  my  campaign  fares 
with  the  systems  adminis¬ 


trators.  ■ 

This  week’s  journal  is 
written  by  a  real  security 
manager,  “JJ.  Me*,’  whose 
name  and  employer  have 
been  disguised  for  obvious 
reasons.  Contact  him  at 
jf.rice@engineer.com. 
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The  new  SoivcWALL  NSA  240  next  generation  firewall  delivers  600  Mbps  in  network  throughput  more  thin 
iree  times  the  performance  of  similarly  priced  Fortmet  ,  Jumper  .  Check  Point  .  WatchGuard  and  Cisco  devices 


FINALLY,  THE  NEXT  GENERATION  FIREWALL  THAT  CAN  GIVE  YOU  FULL 
NETWORK  PROTECTION  WITHOUT  COMPROMISING  PERFORMANCE. 


SO  MUCH  FOR  THE  STATUS  QUO. 


SONICWALL 


Paul  Glen 


Experience:  What’s 
H  Really  Worth? 


MANAGERS  SEEM  to  have  mixed  feelings  about 
experience,  but  you  wouldn’t  know  it  from  read¬ 
ing  a  typical  job  advertisement. 

Most  of  them  read  like  a  laundry  list  of  re¬ 
quired  educational  experience,  managerial  experience,  specif¬ 
ic  technical  experience,  project  role  experience,  industry  ex¬ 
perience,  business  application  experience,  and  on  and  on  and 
on.  This  experience  thing  must  be  amazingly  powerful.  Time 
served  must  be  a  measure  of  something  really  important. 


But  if  experience  is  at 
such  a  premium,  why  are 
there  so  many  articles 
about  how  hard  it  is  for 
older  IT  workers  to  find  a 
job?  Wouldn’t  you  think 
that  someone  with  35  years 
in  IT  would  be  fighting  off 
suitors,  and  fresh  gradu¬ 
ates  would  be  offering  their 
services  free  of  charge  in 
order  to  obtain  a  dose  of 
this  golden  elixir? 

Why  don't  recruiters  ad¬ 
vertise  in  AARP  magazine 
rather  than  throwing  parties 
on  Ivy  League  campuses? 

The  love-hate  relation¬ 
ship  managers  have  with 
experience  seems  to  be 
based  on  their  acceptance 
of  four  questionable  and 
incompatible  premises: 

1.  Expariane*  impiin 
knowledge.  The  obvious 
reason  to  look  for  people 
with  experience  is  that 
managers  are  often  risk- 
averse  and  believe  that 
hiring  someone  with  ex¬ 


perience  is  safer  than  hir¬ 
ing  someone  without  it.  If 
you've  done  this  exact  job 
three  times  before,  then 
you  must  know  how  to  do 


ky.  While  managers  appar¬ 
ently  think  that  some  expe¬ 
rience  is  a  good  thing,  they 
also  seem  to  assume  that 
too  much  of  a  good  thing  is 
not  so  good.  If  you  have  too 
much  experience  with  the 
same  role,  technology  or 
type  of  project,  something 
must  be  wrong  with  you. 
You  must  be  stuck  in  your 
ways;  you  must  have  be- 


■  My  own  experi¬ 
ence  has  taught 
me  that  most 
people  don’t  really 
absorb  the  lessons 
that  their  experi- 


3.  Youth  implies  craativ- 
tty.  In  many  cases,  we  love 
to  hire  young  people  pre¬ 
cisely  because  of  their  lack 
of  experience.  They  are 
not  set  in  the  old  ways  and 
are  free  to  come  up  with 
new  ideas  and  approaches 
that  people  with  experi¬ 
ence  might  never  consider. 
They  are  a  breath  of  fresh 
air  to  clean  out  the  stale, 
old  smell  of  experience. 

4.  Youth  implies  drivo. 
And  finally,  we  love  to 
hire  the  young  because 
they  have  so  much  energy 
and  ambition.  They  are 
dying  to  go  out  and  make 
something  of  themselves, 
to  climb  mountains  and 
explore  new  horizons.  Ex¬ 
perience  hasn’t  yet  taught 
them  about  the  futilities  of 
work  and  the  frustrations 
of  life.  They  are  not  yet 
beaten  down  and  resigned. 

All  of  these  assumptions 
presume  that  experience 
is  either  a  great  teacher  oi 


i  cruel  one.  But  the  truth 
s  that  experience  doesn’t 
assure  knowledge  or  rigid¬ 
ity  any  more  than  youth 
assures  creativity  or  drive. 
Passing  through  school 
can’t  guarantee  that  a  stu¬ 
dent  has  learned,  only  that 
she  has  had  a  chance  to  do 
so.  Learning  is  ultimately 
up  to  the  student.  Simi¬ 
larly,  experience  implies 
only  that  someone  has  had 
the  opportunity  to  learn, 
not  that  she  has  actually 
learned  anything. 

My  own  experience  has 
taught  me  that  most  people 
don’t  really  absorb  the  les¬ 
sons  that  their  experience 
offers.  In  one  sense,  they 
haven’t  so  much  gained 
experience  as  they  have 
had  things  happen  to  them. 
They  become  neither 
knowledgeable  nor  jaded. 
They  haven’t  processed 
the  ideas  or  compared  real- 
world  happenings  with 
their  theories  of  how  the 
world  works.  Without  this 
processing,  experience  isn’t 
really  a  great  teacher  or  a 
cruel  one;  it’s  only  a  way  to 
mark  the  passage  of  time. 

If  you  really  want  to 
make  use  of  someone’s 
experience,  or  of  your 
own,  find  a  way  to  gauge 
not  how  much  time  has 
passed,  but  how  much  of 
that  experience  has  been 
turned  into  wisdom.  ■ 

Paul  Oka  i sthefounderof 
the  GeekLeaders.com  Web 
community  and  author  of 
the  award-winning  book 
Leading  Geeks:  How  to 
Manage  and  Lead  People 
Who  Deliver  Technology 
(Jossey-Bass,  20i 
him  at  info@pau 
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Imagine  a  World  Without  Choice 


have  a  choice  at  ProCurve.com/Choice 


♦  'For  combing  through  large  amounts  of  data,"  dtSearch 
■leads  the  marker  -  Network  Computing 

♦  dtSearch  'covers  all  data  sources ...  powerful  Web-based 
engines’  -  eWffff 

♦  dtSearch  'searches  at  blazing  speeds'  -  Computer  Reseller 


No-Risk  Online 
Search  Engine 
Sales  Leads 


Career 

Wi 

■  Q&A 

Cheryl  Cran 

SH  The  author  of 

Control  Freak 

r#flp  Revolution  and  pres- 
'  MWr  ident  of  Synthesis 
at  Work  Inc.  explains  why 
she  believes  control  freaks 
can  make  the  best  leaders. 


“Control  freak"  it  a  pa-  ;  wishy-washy  wimp  any  day. 

jorative  in  the  English 

language.  How  do  you  !  What  does  it  take  to 


as  a  positive?  You  are  right. 
'Control  freak'  has  always  been 
used  in  negative  terms.  I  say 
that  there  are  positive  elements 
to  being  a  control  freak.  Typi¬ 
cally.  control  freaks  want  order, 
consistency  and  perfection. 
Their  behavior  is  negative  only 
when  they  insist  everyone  be 
just  like  them. 

I  am  encouraging  control 
freaks  to  shift  to  positive  ways 


Control  freaks  have  aU  of  these 
things.  When  control  freaks  learn 
to  focus  on  balanced  control, 
they  are  well  respected,  five 


of  control  freak?  To  be 

a 'funky' control  freak,  the 
person  needs  to  be  highly 
self-aware.  They  need  to  catch 
themselves  when  they  exhibit 
negative  and  destructive  be¬ 
haviors.  They  need  to  be  other- 
focused  vs.  self-focused.  They 
need  to  be  self-revealing  about 
their  "control  freakness.' 


control  freak!  I  used  to  be  the 
type  of  leader  who  had  to  over- 
control.  This  only  got  me  so  far 
in  my  career.  I  had  a  couple  of 
great  bosses  who  bluntly  told  me 
I  would  not  get  to  the  executive 
level  without  changing  my  be¬ 
havior.  They  were  right  -  my  suc- 

coaching  to  help  me  change. 

-  JAMIE  ECKLE 


itl  /lull 

THE  AGING  WORKFORCE 


Tracking  the  C 

TEH  YEARS  AFTER  gradua¬ 
tion.  members  of  the  class  of  1993 
with  a  degree  in  computer  science 
had  been  at  the  same  job  an  avet- 
age  of  about  six  years.  That's  lon¬ 
ger  than  any  of  the  other  categories 
of  degree-holders  that  were  looked 
at  in  a  study  produced  by  the  U.S. 
Department  of  Education  s  National 
Center  for  Education  Statistics. 

The  results  were  reported  in  the 
summer  2008  issue  of  the  Bureau 


Outlook  Quarterly. 

The  study  also  found  that  those 
with  a  computer  science  degree 
were  more  likely  to  be  employed 
both  in  1994.  one  year  after  gradu¬ 
ation.  and  in  2003. 10  years  after 
graduation.  In  both  years,  their 


ClaSf’93 


salaries  were  above  the  average 
for  the  study,  but  the  computer 

2%  of  all  undergraduate  degree 
recipients  in  1993.  Those  with 
degrees  in  arts  and  humanities 
were  making  the  least  one  year 
after  graduation  ($25,000).  and 
those  with  education  degrees 
were  at  the  bottom  of  the  salary 
rankings  10  years  after  graduation 
($43,800). 

Oneyearoutofschool,  those 

ing.  and  business  and  manage¬ 
ment  were  all  making  more  than 
those  with  computer  science 
degrees,  but  10  years  after  collect¬ 
ing  the  sheepskin,  only  engineers 
had  a  higher  salary  average. 


IT|careers 


Co-Branded 

EMAIL 

BLASTS 


Reach  your  target  audience 
of  professional  IT  job  seek¬ 
ers  with  Computerworld’s 
Co-Branded  Email  Blasts. 
This  unique  program  allows 
you  to  choose  your  criteria 
of  100%  opt-in  subscribers 
by  geography,  company 
size,  job  title  and  industry. 

Call  Dawn  Cora  at 
800-762-2977  for  details! 

COMPUTERWORLD 


The  Best  Defense 

Rash  back  to  2000:  Develop- 


SharkTank 

TRUE  TALES  OF  IT  LIFE  AS  TOLD  TO  SHARKY 


No  Change 

User  can’t  get  her  new 
company-issued  laptop  to 
work  at  home -moving  the 
network  cable  from  her  home 
PC  to  the  laptop  doesn’t  get 
her  an  IP  address,  and  the 
company  help  desk  can't 
figure  it  out.  So  this  pilot  fish 
who's  the  webmaster  for  the 
user's  department  offers  to 
stop  by  her  home  to  take  a 
look.  “Turned  out  the  cable 
company  has  a  'security'  fea¬ 
ture  that  allows  only  one  de¬ 
vice  to  receive  an  IP  address, 
either  one  computer  or  one 
router,"  says  fish.  A  router 
isn't  in  the  budget,  so  fish  just 
changes  the  laptop's  MAC 
address  to  match  the  PC's, 
and  it  works.  Rash  forward 
several  months:  IT  reloads 


Windows  on  user's  laptop  to 
fix  a  problem,  and  again  the 
laptop  won't  work  at  home. 
User  calls  fish,  who  suggests 
that  she  write  down  the  MAC 
address  from  her  home  PC 
and  have  IT  change  the  lap¬ 
top's  to  match.  “Next  day,  she 
steps  into  my  office,  obviously 
frustrated."  fish  says.  “Two 
of  our  IT  staffers  explained  to 
her  that  the  MAC  address  is 
hard-coded  into  the  laptop,  so 
there’s  no  way  to  change  it. 

I  suggest  that  she  ask  them 
why  I  could  change  the  MAC 
address  but  they  can't.  She 
calls  me  back  a  little  while 
later  to  tell  me  that  IT  figured 
out  how  to  'override'  the  MAC 
address.  But  they  still  insist 
it  cannot  be  'changed.'  I  love 


er  pilot  fish  and  his  team  talk 
with  his  company's  telecom 
group  about  developing  a  pro¬ 
gram  that  could  do  a  denial- 
of-service  attack  on  anyone 
attacking  a  company  server. 
“We  mentioned  it  to  Audit, 
since  they  normally  do  a  test 
on  the  servers,  and  they  be¬ 
lieved  we  had  already  written 
it,"  says  fish.  “For  the  past 
eight  years,  whenever  they 
do  an  audit  and  do  not  follow 
the  rules,  we  offer  to  test  the 
counterstrike  program.  They 
immediately  back  down  and 
stop  the  test.  Slight  problem: 
We've  never  developed  the 
program,”  fish  says.  “But 
people  don’t  know  that.  I  sup¬ 
pose  one  year  they  may  tell  us 
to  test  it.  Until  they  do,  it  will 
continue  to  do  its  job.” 

Then  Well  Test 

This  pilot  fish  sets  up  soft¬ 
ware  for  a  large  customer 
who's  a  bit  gun-shy  when  it 
comes  to  upgrading  Java. 


“Past  Java  updates  have 
caused  problems  with  some 
of  the  customer's  custom- 
built  applications,"  fish  says. 
“So  customer's  management 
sends  out  a  request  for  all  of 
its  application  managers  to 
report  back  if  the  new  Java 
version  will  work  with  their 
custom  apps.  I  ask  if  I  can  get 
the  new  version  loaded  to  the 
test  servers  for  the  applica¬ 
tion  managers  to  test.  Man¬ 
agement  says  no  -  the  new 
version  is  not  to  be  released, 
even  for  testing,  until  the  ap¬ 
plication  managers  report  the 
results  of  their  testing.” 

■  Report  your  true  tale  of  IT 
life  to  Sharky:  sharky@ 
computerworld.com.  You'll 
snag  a  snazzy  Shark  shirt  if  l 
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Let’s  Get  Visible 


HINK  VOLATILITY  is  confined  to  the  stock  mar¬ 
ket?  Of  course  you  don’t  —  that  wild  ride  is  now 
the  defining  theme  of  business  for  the  foreseeable 
future.  That  means  all  bets  are  off  when  it  comes  to 
IT  budgets,  IT  projects  and  how  much  cooperation  IT  will  get 
from  the  rest  of  the  business. 


Budgets?  You’ve  been 
through  this  before.  You 
knew  that  charming 
piece  of  fiction  approved 
by  upper  management 
wasn’t  likely  to  survive 
the  year  without  cuts. 
Still,  you  were  optimistic. 
And  hey,  that  budget  last¬ 
ed  all  of  two  weeks  into 
the  new  fiscal  year. 

But  now  you’ll  be  cut¬ 
ting.  and  cutting,  and  cut¬ 
ting  some  more  —  just  like 
the  rest  of  the  business. 

As  budgets  go,  so  go 
projects.  Each  of  your 
projects  has  a  business 
sponsor,  right?  But  now, 
any  project’s  sponsor 
could  disappear  at  a  mo¬ 
ment’s  notice.  That  might 
mean  the  sponsoring  ex¬ 
ecutive  had  to  cut  his  own 
budget,  and  the  project  he 
supported  no  longer  fits 
into  his  plans.  Or  the  busi¬ 
ness  sponsor  could  just 
disappear  because  he  has 
bailed  out  or  been  laid  off. 

An  empty  office  means 
no  business  sponsor  — 


and  that  means  no  project. 

And  when  it  comes 
to  cooperation,  forget  it 
Everyone  on  the  business 
side  will  hunker  down,  run 
lean  and  hope  they  just  get 
squeezed,  not  strangled. 
The  last  thing  they’ll  think 
about  is  IT  projects. 

Maybe  that  sounds 
tempting  for  IT,  too.  But 
don’t  go  there. 

Remember,  IT  isn’t  like 
sales  or  manufacturing, 
where  results  show  up  in 
easy-to-grasp  numbers. 
Even  a  hunkered-down 
sales  force  brings  in  some 
orders,  and  a  lean-running 
plant  produces  some 
widgets.  They  still  justify 
their  scaled-back  budgets. 

But  if  IT  really  pulls 
back  from  projects,  it 
looks  like  we’ve  stopped 

■  Let’s  face  it: 
Without  projects, 

IT  is  invisible. 
That’s  not  fair, 
but  it’s  reality. 


doing  anything.  We 
haven’t,  of  course;  we’re 
still  performing  all  those 
pesky  operational  things. 
But  networks,  servers, 
phones  and  applications 
that  keep  running  —  well, 
that’s  just  background 
noise  to  users.  Sure,  they 
depend  on  them.  But  they 
don’t  notice  them. 

Let’s  face  it:  Without 
projects,  IT  is  invisible. 
That’s  not  fair,  but  it’s  real¬ 
ity.  And  especially  at  times 
like  this,  we  need  visibility. 

Then  again,  there’s 
good  visibility  and  bad 
visibility.  It  doesn’t  help  if 
top  management  sees  us 
burning  money  on  proj¬ 
ects  that  are  about  to  be 
spiked.  We  need  visibility 
doing  successful  projects. 

But  how?  The  standard 
approach  is  to  suspend  all 
projects  that  won’t  pro¬ 
duce  a  fast  return  on  in¬ 
vestment.  Trouble  is,  that 
prioritizes  projects  on 
the  basis  of  turnaround, 
not  business  value.  Quick 


hits  are  great,  but  churn¬ 
ing  out  trivial  stuff  will 
impress  no  one. 

Here’s  another  way: 

Pick  out  your  most  im¬ 
portant  projects.  Now  go 
to  each  business  sponsor 
and  ask  what  piece  of 
his  project  will  have  the 
greatest  value  if  you  can 
turn  it  around  quickly. 

That’s  right:  You’re 
carving  out  quick  little 
successes  from  big, 
impossible-to-deliver- 
soon  projects. 

But  that’s  not  all  you’re 
doing.  You’re  also  getting 
a  reality  check  on  each 
project  from  the  guy  who’s 
best  able  to  give  it  to  you. 

The  business  sponsor 
knows  his  plans.  He  can 
tell  you  if  he's  no  longer 
able  to  support  the  proj¬ 
ect.  Or  if  it  needs  to  do 
something  different  Or 
if  it’s  more  important 
than  ever.  Or  if  tweaking 
it  will  slash  the  schedule 
and  boost  the  payback. 

In  short,  in  the  midst 
of  all  this  volatility,  busi¬ 
ness  sponsors  can  deliver 
visibility  —  visibility 
into  the  business  that  lets 
IT  remain  visible  to  the 
business. 

And  with  that  visibility, 
IT  can  keep  delivering 
value  —  no  matter  how 
wild  things  get.  ■ 

Frank  Hayas  is  Computer- 
world's  senior  news 
columnist.  Contact  him 
at  frank_hayes@ 
computerworld.com. 
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Fujitsu  recommends  Windows  Vista  Business  for  business  computing. 
Fujitsu  recommends  Windows  Vista  Home  Premium  for  personal  computing. 


’} *  Windows  Vista 

Business  * 


/ 


m 


When  your  life  is  caffeinated,  you 
need  a  notebook  that  keeps  up. 

FUJITSU 


to  go 


Sea  otters  have  up  to  a  million  strands  of  hair  per  square  inch. 


They  can’t  keep  up  with  the  continuous  process  of  cleansing. 

But  you  can.  With  proven  data  integration  software  and  services  from  SAS. 


•  Data  quality  and  data  profiling  •  Extraction,  transformation 

•  Connectivity  and  metadata  and  loading  (ETL) 

.  Data  cleansing  and  enrichment  •  Migration  and  synchronization 

•  Data  federation  •  Master  data  management 
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